Vulnerability CVE-2023-0764


Published: 2023-04-17

Description:
The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not perform proper sanitization of gallery information, leading to a Stored Cross-Site Scription vulnerability. The attacker must have at least the privileges of the Author role.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://wpscan.com/vulnerability/d48c6c50-3734-4191-9833-0d9b09b1bd8a

Copyright 2026, cxsecurity.com

 

Back to Top